E-Arogya

Privilege Escalation

CWE : CWE-269
Description :
Access control (or authorization) is the application of constraints on who (or what) can
perform attempted actions or access resources that they have requested. In this context,
application allows a user to access the resources which need to be protected.
Affected Path(s) :
https://earogya.satragroup.in/configuration/all_master *-Applicable to entire
application
Impact :
The degree of escalation depends on what privileges the attacker is authorized to
possess, and what privileges can be obtained in a successful exploit.
Recommendation :
It is recommended to implement role based access control at server side. Validate the
user's cookies/authorization tokens at server side properly before providing access to any
resource.
Evidence/Proof Of Concept :
Step 1: Login to the application with test1_dr credentials in in browser1 and test1_fd
credentials in browser2.
________________________________________________________________________________________________

________________________________________________________________________________________________
Step 2: It is observed that there are different tabs in both logins as shown in below
screenshot.

Step 3: Click on the edit tab in test1_fd login Copy the URL
"https://earogya.satragroup.in/configuration/all_master"
________________________________________________________________________________________________
______________________________________________________________________
Step 4: Click on the edit tab in test1_dr login Paste the URL
"https://earogya.satragroup.in/configuration/all_master"
Step 5: Try to access the browser1 observed that test1_dr also able to access the same page
as shown below screenshot.
________________________________________________________________________________________________





___________________________________________________________________________________________